diff --git a/navalplanner-webapp/src/main/java/org/navalplanner/web/users/services/DBUserDetailsService.java b/navalplanner-webapp/src/main/java/org/navalplanner/web/users/services/DBUserDetailsService.java
index ef4f23f2e..aa5bb11e7 100644
--- a/navalplanner-webapp/src/main/java/org/navalplanner/web/users/services/DBUserDetailsService.java
+++ b/navalplanner-webapp/src/main/java/org/navalplanner/web/users/services/DBUserDetailsService.java
@@ -73,6 +73,12 @@ public class DBUserDetailsService implements UserDetailsService {
             allRoles.addAll(eachProfile.getRoles());
         }
 
+        if(allRoles.isEmpty()) {
+            //that user doesn't have any roles, so we forbid his login
+            throw new UsernameNotFoundException(_("User with login name " +
+                    "'{0}': access forbidden", loginName));
+        }
+
         return new org.springframework.security.userdetails.User(
             user.getLoginName(),
             user.getPassword(),